writeups · 1 min read

WriteUp - Canape (HackTheBox)

Canape write-up (HackTheBox). Intermediate Linux machine that exploits an insecure pickle deserialisation in Flask + CouchDB. Includes RCE via pickle payload, CouchDB enumeration, and escalation to root by abusing sudo pip install.

18 may 2018 · Manuel López Pérez · writeups

Today we bring a new writeup of Hackthebox. This time it’s Canape

Canape

Created by overcast Write-up By manulqwerty
manulqwerty-canape.pdf

—> https://ironhackers.es/en/writeups/writeup-canape-hackthebox-2/

Back to Blog

View All Posts »

writeups · 1 min

WriteUp - Valentine (HackTheBox)

Valentine write-up (HackTheBox): classic Linux machine that exploits Heartbleed (CVE-2014-0160) to extract Apache's RSA private key, then uses the key to connect via SSH and escalate to root with a vulnerable binary.

25 may 2018 · Pablo Plaza Martínez

writeups · 3 min

WriteUp – Aragog (HackTheBox)

Aragog write-up (HackTheBox): initial scan, XXE exploitation to read SSH keys, user access, WordPress modification to steal admin credentials and escalate to root. Intermediate level with a focus on XXE and creative post-exploitation.

21 jul 2018 · Pablo Plaza Martínez

writeups · 2 min

WriteUp - Celestial (HackTheBox)

Write-up of Celestial (HackTheBox). Low-level Linux machine that exploits an insecure cookie deserialisation in Node.js (CVE-2017-16137) to obtain RCE, then escalates to root by abusing a cron job that executes an editable script.

10 sept 2018 · Manuel López Pérez

Canape

Related Posts

WriteUp - Valentine (HackTheBox)

WriteUp – Aragog (HackTheBox)

WriteUp - Celestial (HackTheBox)